Oval Definition:oval:org.opensuse.security:def:56738
Revision Date:2020-12-01Version:1
Title:Security update for zziplib (Low)
Description:

This update for zziplib fixes the following issues:

Security issues fixed:

- CVE-2018-7726: There is a bus error caused by the__zzip_parse_root_directory function of zip.c. Attackers could leverage thisvulnerability to cause a denial of service (bsc#1084517). - CVE-2018-7725: An invalid memory address dereference was discovered in zzip_disk_fread in mmapped.c. The vulnerability causes an application crash, which leads to denial of service (bsc#1084519).
Family:unixClass:patch
Status:Reference(s):1000362
1021578
1027197
1052311
1052368
1084517
1084519
1111331
1111634
1111635
1130831
1136976
1166916
1170643
1171252
1171254
1172265
1172443
939460
939523
944458
945842
952151
953831
954002
955382
960996
962743
962765
964468
966220
968771
CVE-2009-2625
CVE-2009-3560
CVE-2009-3720
CVE-2010-3609
CVE-2012-0876
CVE-2012-1147
CVE-2012-1148
CVE-2015-1283
CVE-2015-4871
CVE-2015-5276
CVE-2015-6806
CVE-2015-7575
CVE-2015-8126
CVE-2015-8472
CVE-2016-0402
CVE-2016-0448
CVE-2016-0466
CVE-2016-0483
CVE-2016-0494
CVE-2016-0718
CVE-2016-2776
CVE-2016-6354
CVE-2017-1000112
CVE-2017-6318
CVE-2017-9103
CVE-2017-9104
CVE-2017-9105
CVE-2017-9106
CVE-2017-9107
CVE-2017-9108
CVE-2017-9109
CVE-2018-1000807
CVE-2018-1000808
CVE-2018-12126
CVE-2018-12127
CVE-2018-12130
CVE-2018-7725
CVE-2018-7726
CVE-2019-11091
CVE-2019-8457
CVE-2020-12653
CVE-2020-12654
CVE-2020-3899
CVE-2020-7598
CVE-2020-8174
SUSE-SU-2016:0265-1
SUSE-SU-2016:0963-1
SUSE-SU-2016:2399-1
SUSE-SU-2017:0713-1
SUSE-SU-2017:2436-1
SUSE-SU-2018:0919-1
SUSE-SU-2018:4063-1
SUSE-SU-2019:1296-1
SUSE-SU-2019:1354-1
SUSE-SU-2019:1601-1
SUSE-SU-2020:1211-1
SUSE-SU-2020:1612-1
SUSE-SU-2020:1623-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 6-LTSS
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND enscript-1.6.6-lp150.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • libwireshark9-2.4.16-lp151.2.6 is installed
  • OR libwiretap7-2.4.16-lp151.2.6 is installed
  • OR libwscodecs1-2.4.16-lp151.2.6 is installed
  • OR libwsutil8-2.4.16-lp151.2.6 is installed
  • OR wireshark-2.4.16-lp151.2.6 is installed
  • OR wireshark-devel-2.4.16-lp151.2.6 is installed
  • OR wireshark-ui-qt-2.4.16-lp151.2.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • libzzip-0-13-0.13.67-10.8 is installed
  • OR zziplib-0.13.67-10.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • bind-9.9.9P1-46 is installed
  • OR bind-chrootenv-9.9.9P1-46 is installed
  • OR bind-doc-9.9.9P1-46 is installed
  • OR bind-libs-9.9.9P1-46 is installed
  • OR bind-libs-32bit-9.9.9P1-46 is installed
  • OR bind-utils-9.9.9P1-46 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_74-60_64_40-default-4-2 is installed
  • OR kgraft-patch-3_12_74-60_64_40-xen-4-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_15-4-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • expat-2.1.0-17 is installed
  • OR libexpat1-2.1.0-17 is installed
  • OR libexpat1-32bit-2.1.0-17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • kernel-default-4.4.121-92.73 is installed
  • OR kernel-default-base-4.4.121-92.73 is installed
  • OR kernel-default-devel-4.4.121-92.73 is installed
  • OR kernel-devel-4.4.121-92.73 is installed
  • OR kernel-macros-4.4.121-92.73 is installed
  • OR kernel-source-4.4.121-92.73 is installed
  • OR kernel-syms-4.4.121-92.73 is installed
  • OR kgraft-patch-4_4_121-92_73-default-1-3.3 is installed
  • OR kgraft-patch-SLE12-SP2_Update_21-1-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_90-92_50-default-8-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_15-8-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • expat-2.1.0-20 is installed
  • OR libexpat1-2.1.0-20 is installed
  • OR libexpat1-32bit-2.1.0-20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • apache2-2.4.23-29.54 is installed
  • OR apache2-doc-2.4.23-29.54 is installed
  • OR apache2-example-pages-2.4.23-29.54 is installed
  • OR apache2-prefork-2.4.23-29.54 is installed
  • OR apache2-utils-2.4.23-29.54 is installed
  • OR apache2-worker-2.4.23-29.54 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_180-94_103-default-3-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_28-3-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • xen-4.9.4_06-3.59 is installed
  • OR xen-doc-html-4.9.4_06-3.59 is installed
  • OR xen-libs-4.9.4_06-3.59 is installed
  • OR xen-libs-32bit-4.9.4_06-3.59 is installed
  • OR xen-tools-4.9.4_06-3.59 is installed
  • OR xen-tools-domU-4.9.4_06-3.59 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND libXxf86dga1-1.1.4-3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6-LTSS is installed
  • AND python-setuptools-18.0.1-4.8 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • libsqlite3-0-3.8.10.2-9.9 is installed
  • OR libsqlite3-0-32bit-3.8.10.2-9.9 is installed
  • OR sqlite3-3.8.10.2-9.9 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND python-Django-1.11.11-3.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • dpdk-16.11.9-8.15 is installed
  • OR dpdk-kmp-default-16.11.9_k4.4.180_94.127-8.15 is installed
  • OR dpdk-tools-16.11.9-8.15 is installed
    • BACK